FortiManager
FortiManager supports network operations use cases for centralized management, best practices compliance, and workflow automation to provide better protection against breaches.
teddyko_FTNT
Staff
Staff
Description
This article explains how to configure FortiGate remote system administrators from the FortiManager.

Solution

Generally, FortiGate settings are configured exclusively at one database (Device Database, or Policy Package ADOM DB). One exception is system admins configured with remote authentication.

Remote authentication server should always be configured under Policy & Objects -> Object Configuration. The admin settings are configured under Device Manager.

1)      Policy & Objects -> Object Configurations -> User & Devices

a)       Select Remote Server type (LDAP, RADIUS, TACACS+)

b)      Configure server IP/secret and save

2)      Policy & Objects -> Object Configurations -> User & Devices -> User Groups

a)       Create New Remote Authentication Server

FMGRemoteAuth1.png

3)      Device Manager -> Edit Device -> System -> Administrator

a)       Configure Remote User Group with group created from step 2

b)      User Group list is pulled from ADOM Database, instead of Device DB

FMGRemoteAuth1.png
Contributors